Secure and Audit the Virtual Infrastructure
Virtualization adds a layer of complexity to challenges already faced by compliance and security organizations. Physical to virtual migrations open the door for compliance exceptions, even at the virtual machine level, by introducing changes to the original physical implementation. The hypervisor itself adds a potential threat vector, while the virtualized network hides some network traffic from traditional security systems (e.g., network IDS, gateways). These risks can be addressed by:
- Evaluating the security configuration of both the hypervisor (ESX) and the virtual machines
- Comparing post-migration configurations to pre-migration configurations
- Monitoring privileged user activity and changes at the virtual machines, avoiding the dependency on seeing network traffic
NetIQ's solution supports the latest standards for VMware security published by the Center for Internet Security and helps easily demonstrate compliance while improving security and control.
NetIQ Supporting Products
 |
NetIQ Secure Configuration Manager NetIQ Secure Configuration Manager automatically assesses and baselines the configuration of both ESX and the virtual machines (OS, databases, web servers, etc.), and leverages best practices such as the Center for Internet Security benchmarks (including the benchmark for ESX). |
 |
NetIQ Security Manager monitors user activity, detects changes, and provides log consolidation and reporting. This technology extends to the ESX and virtual machine systems. |
